FUDforum: Bug Reports » [img]

Home » FUDforum Development » Bug Reports » [img] - PHP injection??!!

Show: Today's Messages :: Polls :: Message Navigator

Re: [img] - PHP injection??!! [message #22341 is a reply to message #22339]

Fri, 28 January 2005 17:23

Ilia

Messages: 13241
Registered: January 2002

Karma:

Senior Member
Administrator
Core Developer

Checking image extensions is pointless, because there are MANY simple ways to bypass it:

1) Make server think of all .jpg,.gif requests as scripting files passed to PHP.

2) Redirect requests for .jpg to scripting language.

3) Even if during message posting the URL was validated as valid image, there is nothing to stop the user from going to their server and changing the content of the image after it has been validated.

As long as [img] tag is enabled it is ultimately up to the remote server what sort of image data is returned.

FUDforum Core Developer

Report message to a moderator

[Message index]

		[img] - PHP injection??!! By: ggray on Fri, 28 January 2005 15:17
		Re: [img] - PHP injection??!! By: JamesS on Fri, 28 January 2005 16:13
		Re: [img] - PHP injection??!! By: ggray on Fri, 28 January 2005 16:29
		Re: [img] - PHP injection??!! By: Ilia on Fri, 28 January 2005 16:42
		Re: [img] - PHP injection??!! By: ggray on Fri, 28 January 2005 17:19
		Re: [img] - PHP injection??!! By: Ilia on Fri, 28 January 2005 17:23
		Re: [img] - PHP injection??!! By: ggray on Fri, 28 January 2005 17:35

Previous Topic:	Unknown table 'fud26_fl_' when deleting forums
Next Topic:	Customer complaint

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

]

Current Time: Wed Jul 03 01:48:49 GMT 2024

Total time taken to generate the page: 0.05767 seconds